1 to 25 of 165 OWASP Jobs in the UK

years of experience in Product Security, Application Security, or a related security engineering role. Deep expertise in secure software development, secure coding practices, and OWASP Top 10/CWE 25. Strong technical proficiency in modern programming languages (e.g., Python, Java, JavaScript, Go, or C#). Experience with cloud-native security More ❯

tools such as AWS CodeBuild, Jenkins, GitLab, Azure DevOps. Proficiency in scripting languages such as Python, PowerShell. Knowledge of security tools and frameworks (e.g., OWASP, SCA, SAST, DAST). Familiarity with one or more cloud platforms (AWS, Azure, GCP) and containerization technologies (Docker, Kubernetes). Excellent problem-solving skills and More ❯

development and cloud security (CSSLP, AZ-500, SC-100/SC-200, AWS Security, GCSA, GCLD, or similar). Familiarity with secure coding standards (OWASP, SEI CERT) and SSDLC models (Microsoft SDL, NIST 800-218 SSDF). Knowledge or experience of Product Assurance Schemes (PAS) or product security frameworks (PAS More ❯

with AWS (or other cloud-based solutions) . Strong understanding of secured Software Development Lifecycle (SDLC) and CI/CD platforms . Familiarity with OWASP, CIS frameworks, and security best practices . Infrastructure & Scripting Knowledge: Proficiency in Microsoft platforms (Office 365, IIS, .NET, SQL Server, Windows Server, Active Directory). More ❯

with AWS (or other cloud-based solutions) . Strong understanding of secured Software Development Lifecycle (SDLC) and CI/CD platforms . Familiarity with OWASP, CIS frameworks, and security best practices . Infrastructure & Scripting Knowledge: Proficiency in Microsoft platforms (Office 365, IIS, .NET, SQL Server, Windows Server, Active Directory). More ❯

and AI/ML technologies. Deep understanding of DevSecOps principles and agile development. Knowledge of secure architecture and design principles, industry standards (NIST SSDF, OWASP) and security best practices. Ability to formulate strategic concepts, propose security solutions and communicate effectively to both technical staff and non-technical stakeholders. To be More ❯

Application Developers, Support Engineers, Software Testers, and UX designers. Develop code based on coding standards and programming methods (e.g., Data security and best practices - OWASP, GDPR restrictions and requirements, Git/Azure DevOps Workflow, and other internal processes). Use a variety of agile methodologies and follow the DevOps process More ❯

versed in Information security principles at an Intermediate level. Exposure to application security testing (source code review, threat modeling, security testing). Understanding of OWASP, CVSS, the MITRE ATT&CK framework, and the software development lifecycle (SLDC). What is it like to work here? Outstanding - you've probably already More ❯

versed in Information security principles at an Intermediate level. Exposure to application security testing (source code review, threat modeling, security testing). Understanding of OWASP, CVSS, the MITRE ATT&CK framework, and the software development lifecycle (SLDC). What is it like to work here? Outstanding - you've probably already More ❯

of security frameworks such as ISO 27001, NIST, or CIS benchmarks. Experience in application security reviews, vulnerability management, and security controls implementation. Familiarity with OWASP Top 10, CWE, and secure coding practices. Proficiency in using security tools such as static and dynamic analysis tools. Basic coding/scripting skills in More ❯

Exchange/Agreement, Key Derivation, Key Wrapping and Remote Key Attestation. Experience in identifying and mitigating security vulnerabilities on software running on cloud platforms (OWASP Web Top10 vulnerabilities, data encryption, transport layer protections, insecure configurations, secrets management, etc.). Experience with cloud confidential computing, virtualization, enclaves, containers, and workload attestation More ❯

Exchange/Agreement, Key Derivation, Key Wrapping and Remote Key Attestation. Experience in identifying and mitigating security vulnerabilities on software running on cloud platforms (OWASP Web Top10 vulnerabilities, data encryption, transport layer protections, insecure configurations, secrets management, etc.). Experience with cloud confidential computing, virtualization, enclaves, containers, and workload attestation More ❯

knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience More ❯

opportunity with a ton of cool projects and tech you'll be working with. To succeed you'll need: Strong application security knowledge (e.g., OWASP). Familiarity with cloud platforms (AWS, Azure, GCP). Proficiency in IaC tools (Terraform, CloudFormation) for security deployment. Experience extracting metrics from security tools. Expertise More ❯

/IPS, micro-segmentation, host security) Hands-on experience with security products like Trellix, Ivanti, ClearSwift, Yubikey Understanding of secure coding practices and vulnerabilities (OWASP Top 10, SANS Top 25) Expertise in identity and access management (RBAC, ABAC, JWT, Cookies) Incident detection and response in MOD environments Knowledge of security More ❯

and provisioning cloud-native services on Azure. Experience building CI/CD pipelines for web, backend, and data teams. Good understanding of Application security - OWASP Top 10, storing credentials, etc. Good understanding of Linux and Windows Operating Systems. Hands-On Experience with technologies like Azure services, Terraform, Azure DevOps, Docker More ❯

Build and maintain REST API microservices using Java 17 (and occasionally Go), deploying them on OpenShift/Kubernetes 🔹 Integrate security tools like Snyk, BlackDuck, OWASP DependencyTrack, and Artifactory into our CI/CD pipelines 🔹 Work with Jenkins, TeamCity, and Tekton to optimize and maintain our DevSecOps toolchain 🔹 Collaborate with developers More ❯

Build and maintain REST API microservices using Java 17 (and occasionally Go), deploying them on OpenShift/Kubernetes 🔹 Integrate security tools like Snyk, BlackDuck, OWASP DependencyTrack, and Artifactory into our CI/CD pipelines 🔹 Work with Jenkins, TeamCity, and Tekton to optimize and maintain our DevSecOps toolchain 🔹 Collaborate with developers More ❯

Experience with cloud technologies such as Microsoft Azure or AWS. Hands-on experience with browser automation tools and writing Cucumber/Gherkin. Familiarity with OWASP Testing Tools and CI/CD pipelines. Knowledge of ISTQB/ISEB qualifications, JIRA, and Microsoft Azure DevOps. Experience in performance testing (K6 experience is More ❯

CI/CD: TeamCity, Octopus, BitBucket Pipelines, GitHub Actions, Docker, Kubernetes. Software Architecture & Testing: Microservices, TDD, unit testing (xUnit, NUnit, Moq). Security Practices: OWASP, Wiz, Snyk for improving security posture. A Bit About Us When it comes to appliances and electricals, we've got the lot. Washing machines? Yep. More ❯

pipelines implemented in Docker, Linux & Gradle. Behaviour Driven Development (BDD), with Gherkin & SpecFlow. Atlassian Jira, Github, Bamboo, Confluence & JFrog Artifactory. Software security implementation (e.g. OWASP, PKI, X509 Certificates, TLS). Software development for regulated environments (e.g. IVD/Medical devices). In addition to salary, we work flexibly, and provide More ❯

Lambda, Fargate) and serverless technologies Knowledge of CI/CD, version control tools (GIT), and infrastructure as code (Terraform) Familiarity with security frameworks (e.g., OWASP, Cyber Essentials) Experience with databases (e.g., AWS RDS, DynamoDB, SQL Server) Strong problem-solving, collaboration, and communication skills Familiarity with agile development and DevOps principles More ❯

AWS technologies (e.g., Lambda, Fargate), version control (GIT), and infrastructure as code (Terraform). Knowledge of security tools (e.g., Snyk, SonarQube) and frameworks (e.g., OWASP). Desirable: Experience in regulated financial services and FinOps best practices. Right to work in the UK Person Profile: Passionate about continuous learning, technology, and More ❯

solid understanding of data security principles and mechanisms, including encryption and masking and familiarity with major security standards and frameworks (e.g., ISO 27001, NIST, OWASP). Any experience with programming languages like Python, Go, or Java would be a distinct advantage. More ❯

in a recent .Net Framework. Project management tools such as Jira. SonarQube, GitLab, or similar for code quality analysis. Security practices and tools like OWASP and Snyk, or similar. Typescript. CI/CD tools e.g. Jenkins, Azure pipelines, GitHub actions. ELK stack, Prometheus, or Grafana. Benefits: Annual bonus scheme. More ❯